coryHawkvelt/gatehouse-api
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

refactor: standardize audit logging for ISO27001 compliance

Browse Source
This commit is contained in:
Ubuntu
2026-05-14 05:59:49 +00:00
parent 417d462fb9
commit 815084132f
18 changed files with 184 additions and 100 deletions
Download Patch File Download Diff File Expand all files Collapse all files
gatehouse_app/services/mfa_policy_service.py
+2 -2
View File
@@ -871,7 +871,7 @@ class MfaPolicyService:
org_ids = [org.organization_id for org in suspended_orgs]
AuditService.log_action(
action=AuditAction.USER_LOGIN,
action=AuditAction.LOGIN_BLOCKED_COMPLIANCE,
user_id=user.id,
organization_id=org_ids[0] if org_ids else None,
description=f"Login attempt while compliance suspended. Suspended orgs: {org_ids}",
@@ -898,7 +898,7 @@ class MfaPolicyService:
user_agent: Client user agent
"""
AuditService.log_action(
action=AuditAction.USER_LOGIN, # Reusing USER_LOGIN for audit
action=AuditAction.MFA_COMPLIANCE_BYPASS_ATTEMPT,
user_id=user.id,
resource_type="endpoint",
resource_id=endpoint,